It doesn't matter that website loads javascript code for logged in user, as you need a token (which server will give you after a successful login) to authenticate to apis, it is pretty common to do that way
There wasn't a client side API, but the API was missing crucial validation of user input (eg only checking the mac address but didn't check who is actually authenticated)
Two years ago, something very strange happened to me while working from my home network. I was exploiting a blind XXE vulnerability that required an external HTTP server to smuggle out files, so I spun up an AWS box and ran a simple Python webserver to receive the traffic from the vulnerable server.
This article is a great example why you should use your own router instead of ISP provided one
I'm experiencing a similar issue on my phone and I'm using ublock, it is draining the battery very fast and making the phone hot.
I wonder if there is a good alternative/degoogled chrome for Android?
thankfully that is a special mailbox for spam, I sometimes like to come through the emails and see where they submit the data, and maybe submit some data on my own, plus report the issue to website owner/hosting
it depends on your email provider/server, search under term "catch-all" or alias. I'm using a self hosted email on hestiacp, which have a option under domain email settings
At my instance I did setup a email wildcard (receive emails from any address on that domain which don't already have a account) and I get a lot of phishing and scam emails, most of them are send "to" /c/[email protected], as link to this community is linked in sidebar, but I also seen emails "send to" random usernames
So yeah, It is happening, i wonder how bad it is on larger instances
Thank you about mentioning Wintile! I was wondering today if there is a way to do 2x2 tiling on gnome
For me Hetzner cloud is on the top, fair pricing (especially comparing to top cloud providers), very quick instance creation, pretty versatile - for example you can create an internal network between dedicated servers in hetzner and their cloud instances.
i miss old plex (~2016), when it was actually focused on providing local content, good thing jellyfin exist
Restricting registration on femboys.bar
Hi, Due to influx of SEO spam bots, we disabled open registration on femboys.bar Lemmy instance. You can still create new account, you will need to wait for approval. I know that this sucks, as I gone through this at my start with Lemmy, but for the time being this is the solution.
If you think that your approval was rejected incorrectly, please contact me on Element - you can find contact in my profile or on the instance sidebar
love, femboys.bar admin
If I remember correctly, the Chinese version is the same thing as the later global release and it should not be necessary to flash a ROM, it should contain English right out of the box and more feature will come later with update over zepp life/whatever the app is called now
I doubt it was a real wallet - most likely it was just a scam exchange that would prompt you to send cryptocurrency "for verification" before you could try to withdraw them.
The idea was already exploited on prnt.sc, where it is possible to try bruteforce screenshot ID and find other users public screenshots - https://splashdot.github.io/scam1/
Your docker install is too old and it doesn't support that docker-compose version, you probably should update your docker to more recent one (are you running debian 10 on default repositories?), or you could remove logging references from file (these x-logging
lines in each service and whole section on top of file)
Hey, could you provide more details about setup? Are you using ansible or docker? Using any other reverse proxy?
Well, probably, but considering that sh.itjust.works was targeted by bots, i suspect that it is slow not only because of the users
You can always switch to different, smaller instance (all posts and comments are available on all lemmy instances), but i'm not sure if there is any easy tool to transfer your subscribed communities
I'm using x2go to access my remote KDE session for a couple of years now - it runs over ssh tunnel and supports audio, generally im pretty happy with the performance, the only disadvantage that I come across is a lack of mobile app and the session sometimes can be a bit flakey
Close enough! I'm using a HP z230 SFF, not as small as those 1L USFF, but pretty practical for a small homeserver, have a couple of PCI-E slots to expand, can hold 2x HDD (if you count replacing 5,25 optical drive with a tray) or multiple SSD wherever they fit. Pretty happy with this build, day-to-day it draws about ~18-50W from the wall, depends on load.
No, i didn't, but i think it should also work over cloudflared
My instance is actually behind cloudflare and it works fine, but remember that it would be possible to "expose" ip of your server due to federation, as your server will talk to other server (directly, that traffic won't go over cloudflare), so if you are paranoid about that, i would recommend setting up a wireguard tunnel to cloud instance, and forwarding the traffic that way, or just setup the lemmy on that instance
Proxmox itself is pretty lightweight, and yes, i'm also running other VMs and LXC containers (not much, about 9 containers with some lite services like teamspeak server, couple of bots, deluge and hestiacp, prometheus, k3s for testing and "vdi" in vm). Actually - i'm running docker - inside LXC containers. Not the prettiest way to do it, but it works fine
I'm using hestiacp to host some websites anyway, so i just added a new nginx template to create reverse proxy to lemmy+lemmy_ui containers
Myself i'm running a instance for two people in a pretty small lxc container on my home server- 1vCore, 512MB of ram and 8GB storage. Currently it utilize around 5% of CPU, ~250MB of ram (+260MB of swap), and ~2GB of storage (nearly 50/50 picts/postgres), in terms of network traffic i see average of 20kb/s, depends how many communities are you subscribed for.
My homeserver is running on i3-4150, 16GB ram and a couple of ssds, using Proxmox VE as hypervisor
edit: typo